Ransomware News 2020 October -  Úvod  2020  2019  2018  0  1  2  3 


2020 -  January February March April May June July August September October November December


H  Ransomware  Jak útoèí  Klany  Techniky  Obrana  Popisky  Anti-Ramson Tool  Rescue plan  Anti-ransomware vaccine  RansomFree  Prevence  Video  Vývoj 

31.10.20

UHS restores hospital systems after Ryuk ransomware attack

Výsledek obrázku pro ransomware

Universal Health Services (UHS), a Fortune 500 hospital and healthcare services provider, says that it has managed to restore systems after a September Ryuk ransomware attack.

31.10.20

New Bondy variant

Výsledek obrázku pro ransomware

Siri found another Bondy Ransomware variant that appends the .Connect extension.

31.10.20

New Hentai OniChan Version King Engine ransomware

Onichan

Siri found a new ransomware that calls itself 'Hentai OniChan Version King Engine' and appends the .docm extension to encrypted files.

31.10.20

New RansomKart ransomware

Výsledek obrázku pro ransomware

0x4143 found a new in-development ransomware called Ransomkart that appends the .ransomkart extension.

31.10.20

New CCE ransomware variant

Výsledek obrázku pro ransomware

Siri found a variant of the CCE ransomware that appends the .aieou extension to encrypted files.

31.10.20

New Wanna Scream variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new Wanna Scream variant that appends the .Bang extension to encrypted files.

31.10.20

New STOP ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP ransomware variant that appends the .jdyi extension to encrypted files.

31.10.20

New Bondy ransomware

Bondy

Siri found the Bondy Ransomware that appends the .bondy extension and drops a ransom note named HELP_DECRYPT_YOUR_FILES.txt.

31.10.20

New MyRansom ransomware

My Ransom

GrujaRS found a new ransomware called MyRansom that does not append an extension but drops a ransom note named README.TXT.

31.10.20

Georgia county voter information leaked by ransomware gang

Výsledek obrázku pro ransomware

The DoppelPaymer ransomware gang has released unencrypted data stolen from Hall County, Georgia, during a cyberattack earlier this month.

31.10.20

Brooklyn & Vermont hospitals are latest Ryuk ransomware victims

Výsledek obrázku pro ransomware

Wyckoff Heights Medical Center in Brooklyn and the University of Vermont Health Network are the latest victims of the Ryuk ransomware attack spree covering the healthcare industry across the U.S.

31.10.20

Hacking group is targeting US hospitals with Ryuk ransomware

Výsledek obrázku pro ransomware

In a joint statement, the U.S. government is warning the healthcare industry that a hacking group is actively targeting hospitals and healthcare providers in Ryuk ransomware attacks.

31.10.20

REvil ransomware gang claims over $100 million profit in a year

Výsledek obrázku pro ransomware

REvil ransomware developers say that they made more than $100 million in one year of extorting large businesses across the world from various sectors.

31.10.20

Maze ransomware is shutting down its cybercrime operation

Výsledek obrázku pro ransomware

​The Maze cybercrime gang is shutting down its operations after rising to become one of the most prominent players performing ransomware attacks.

31.10.20

New RegretLocker ransomware

Výsledek obrázku pro ransomware

MalwareHunterTeam found the RegretLocker ransomware that appends the .mouse extension and drops a ransom note named HOW TO RESTORE FILES.TXT.

31.10.20

New Ragnar Locker ransomware variant

Výsledek obrázku pro ransomware

GrujaRS found a new Ragnar Locker ransomware variant that appends the .__r4gN4r__XXXXXXX extension and drops a ransom note named !!!_READ_ME_XXXXXXX_!!!.txt.

31.10.20

Fake COVID-19 survey hides ransomware in Canadian university attack

Výsledek obrázku pro ransomware

In recent weeks, we’ve observed a number of phishing attacks against universities worldwide which we attributed to the Silent Librarian APT group. On October 19, we identified a new phishing document targeting staff at the University of British Columbia (UBC) with a fake COVID-19 survey.

31.10.20

New Wanna Scream variant

Wanna Scream

0x4143 found a new Wanna Scream variant that appends the .H@RM@ extension and drops ransom notes named info.hta and ReadMe.txt.

31.10.20

New SnapDragon ransomware

0x4143 found a new ransomware called SnapDragon that appends the .SNPDRGN extension to encrypted files.

31.10.20

New Ransomware COVID

Ransomware COVID

MalwareHunterTeam found 'Ransomware COVID' that appends the .crypt extension to encrypted files.

31.10.20

New Mars ransomware

Výsledek obrázku pro ransomware

Michael Gillespie found a new ransomware that appends the .mars extension to encrypted files and drops a ransom note named !!!MARS_DECRYPT.TXT.

31.10.20

Steelcase furniture giant hit by Ryuk ransomware attack

Výsledek obrázku pro ransomware

Office furniture giant Steelcase has suffered a ransomware attack that forced them to shut down their network to contain the attack's spread.

31.10.20

Enel Group hit by ransomware again, Netwalker demands $14 million

Výsledek obrázku pro ransomware

Networks of giant energy company Enel have been hit by a ransomware attack for the second time this year. This time, it's Netwalker asking $14 million ransom for the decryption key.

31.10.20

New Ransomware32 ransomware

Výsledek obrázku pro ransomware

Karsten Hahn found ransomware written in Rust called Ransomware32 that appends the ._encrypted extension and drops a ransom note named README_encrypted.txt.

31.10.20

New TheDMR ransomware variant

Alvin Ransomware

Amigo-A found a new variant of TheDMR Ransomware that calls itself 'Alvin Ransomware' and appends the .ALVIN extension and drops a ransom note named HOW TO RECOVER ENCRYPTED FILES.txt.

31.10.20

Mineral Technologies Inc discloses a ransomware attack in SEC filings

Výsledek obrázku pro ransomware

Minerals Technologies Inc. (the “Company”) today announced that on October 22, 2020, it detected a ransomware attack impacting certain of its information technology systems. Immediately upon its detection of the security incident, which prevented access to certain systems and data within the Company’s network, the company implemented its cyber security emergency response plan. As part of that plan, Company took steps to restore its network and resume normal operations as quickly as possible. The Company launched an investigation working with industry-leading cybersecurity firms, engaged legal counsel, notified law enforcement and is in the process of notifying appropriate governmental authorities.

31.10.20

New Xorist ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new Xorist ransomware variant that appends the .ZaLtOn extension to encrypted files.

31.10.20

New STOP Djvu ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP ransomware variant that appends the .iiss extension to encrypted files.

31.10.20

Sopra Steria confirms being hit by Ryuk ransomware attack

Výsledek obrázku pro ransomware

French enterprise IT services company Sopra Steria confirmed today that they were hit with a Ryuk ransomware attack on October 20th, 2020.

31.10.20

State and Local Cybersecurity: Defending Our Communities from Cyber Threats Amid COVID-19

Výsledek obrázku pro ransomware

In late September, Coveware’s CEO, Bill Siegel, was invited to testify before the Federal Spending Oversight Subcommittee of the Committee on Homeland Security and Governmental Affairs. The topic: Defending Our State & Local Communities from Cyber Threats Amid COVID-19. The committee hearing was postponed after the passing of Ruth Bader Ginsberg, and while we look forward to the hearing be rescheduled, we figured would publish our submitted testimony anyway. The testimony explains the market dynamics of ransomware, and our thoughts on how to most efficiently and effectively protect our state & local communities from cyber threats.

31.10.20

New Russian Ransomware

Russian ransomware

dnwls0719 found a new ransomware targeting Russia that appends the .pizhon-(Random) extension to encrypted files.

24.10.20

New #Szymekk #Ransomware

Výsledek obrázku pro ransomware

GrujaRS found a new Syzmekk ransomware variant that appends the .Szymekk extension.

24.10.20

New Yatron Decrypt0r 2.0

Yatron Ransomware

GrujaRS found a new Yatron Decrypt0r variant that appends the .Down_With_Usa extension to encrypted files.

24.10.20

New Clay ransomware

Clay

xiaopao found the new Clay Ransomware.ransomware called Clay.

24.10.20

New Dharma ransomware variant

Výsledek obrázku pro ransomware

xiaopao found a new Dharma ransomware variant that appends the .Acuf2 extension.

24.10.20

New ransomware discovered

Výsledek obrázku pro ransomware

Siri found a new HiddenTear ransomware variant that pretends to be a GTA V instaler, but encrypts your files with the .AnoymouS extension.

24.10.20

New RAT malware gets commands via Discord, has ransomware feature

Výsledek obrázku pro ransomware

The new 'Abaddon' remote access trojan may be the first to use Discord as a full-fledged command and control server that instructs the malware on what tasks to perform on an infected PC. Even worse, a ransomware feature is being developed for the malware.

24.10.20

WastedLocker ransomware hits Boyne Resorts ski resort operator

Výsledek obrázku pro ransomware

US-based ski and golf resort operator Boyne Resorts has suffered a cyberattack by the WastedLocker operation that has impacted company-wide reservation systems.

24.10.20

Venom RAT adds ransomware module

Výsledek obrázku pro ransomware

Karsten Hahn discovere that Venom RAT has added a ransomware module that appends the .Venom extension.

24.10.20

French IT giant Sopra Steria hit by Ryuk ransomware

Výsledek obrázku pro ransomware

French IT services giant Sopra Steria suffered a cyberattack on October 20th, 2020, that reportedly encrypted portions of their network with the Ryuk ransomware.

24.10.20

New Dharma ransomware variant

Výsledek obrázku pro ransomware

Marcelo Rivero found a new Dharma ransomware variant that appends the .bH4T extension.

24.10.20

Montreal's STM public transport system hit by ransomware attack

Výsledek obrázku pro ransomware

Montreal's Société de transport de Montréal (STM) public transport system was hit with a RansomExx ransomware attack that has impacted services and online systems.

24.10.20

LockBit ransomware moves quietly on the network, strikes fast

Výsledek obrázku pro ransomware

LockBit ransomware takes as little as five minutes to deploy the encryption routine on target systems once it lands on the victim network.

24.10.20

New ransomware discovered

Výsledek obrázku pro ransomware

Siri found a new ransomware that appends the .32aa extension to encrypted files.

24.10.20

New Black Heart ransomware variant

Black Heart viper

Siri found a new Black Heart ransomware variant that appends the .Viper extension to encrypted files.

24.10.20

New STOP Djvu ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP ransomware variant that appends the .nypg extension to encrypted files.

24.10.20

New Dharma ransomware variant

Výsledek obrázku pro ransomware

Jakub Kroustek found a new Dharma ransomware variant that appends the .259 extension to encrypted files.

24.10.20

Barnes & Noble hit by Egregor ransomware, strange data leaked

Výsledek obrázku pro ransomware

The Egregor ransomware gang is claiming responsibility for the cyberattack on U.S. Bookstore giant Barnes & Noble on October 10th, 2020. The attackers state that they stole unencrypted files as part of the attack.

24.10.20

Darkside ransomware donates $20K of extortion money to charities

Výsledek obrázku pro ransomware

The operators of Darkside ransomware have donated some of the money they made extorting victims to nonprofits Children International and The Water Project.

24.10.20

New Vaggen Ransomware

Vagget

Marcelo Rivero found a new ransomware named Vaggen that appends the .VAGGEN extension and drops ransom notes named ABOUT_UR_FILES.txt and AboutYourFiles.txt.

24.10.20

US indicts Russian GRU 'Sandworm' hackers for NotPetya, worldwide attacks

Výsledek obrázku pro ransomware

The U.S. Department of Justice has charged six Russian intelligence operatives for hacking operations related to the Pyeongchang Winter Olympics, the 2017 French elections, and the notorious NotPetya ransomware attack.

24.10.20

New STOP Djvu ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP ransomware variant that appends the .efji extension to encrypted files.

24.10.20

New Pransomware ransomware

Pransomware

@Glacius_ found a copy of BlackKingdom ransomware that was renamed to Pransomware.

24.10.20

New Dharma ransomware variants

Výsledek obrázku pro ransomware

Jakub Kroustek found new Dharma ransomware variants that append the .Crypt and .LCK extension to encrypted files.

18.10.20

New MadDog Ransomware

MadDog

Michael Gillespie found a new HiddenTear ransomware named MadDog that appends the .id-.[maddogteam@airmail.cc].MadDog to encrypted files.

18.10.20

MaMoCrypt Ransomware Decryption Tool

Výsledek obrázku pro ransomware

We’re happy to announce the availability of a new decryptor for MaMoCrypt, a strain of ransomware that appeared in December last year.

18.10.20

Fanduel, Draftkings Data Provider Stats Perform Hit By Ransomware Attack 

Výsledek obrázku pro ransomware

Sports data provider Stats Perform has been down for almost a week thanks to a ransomware hack, Legal Sports Report understands.

18.10.20

ThunderX Ransomware rebrands as Ranzy Locker, adds data leak site

Výsledek obrázku pro ransomware

ThunderX has changed its name to Ranzy Locker and launched a data leak site where they shame victims who do not pay the ransom.

18.10.20

Unknown ransomware found

Unknown

Siri found a new ransomware that appends the .CRPTD extension.

18.10.20

New Adhubllka Ransomware

Výsledek obrázku pro ransomware

xiaopao found the Adhubllka Ransomware that appends the .see_read_me and drops a ransom note named Read_Me.txt.

18.10.20

New STOP Ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP Ransomware variant that appends the .mmpa extension.

18.10.20

Crytek hit by Egregor ransomware, Ubisoft data leaked

Výsledek obrázku pro ransomware

The Egregor ransomware gang has hit game developer Crytek in a confirmed ransomware attack and leaked what they claim are files stolen from Ubisoft's network.

18.10.20

New Scarab Ransomware variant

Výsledek obrázku pro ransomware

Amigo-A found a new variant of the Scarab Ransomware that appends the .Bioawards extension and drops ransom notes named Instruction.txt and DECRYPT FILES.TXT.

18.10.20

New PewPew ransomware variant

Výsledek obrázku pro ransomware

Siri found a new PewPew ransomware variant that appends the .artemis extension.

18.10.20

New Dharma Ransomware variant

Výsledek obrázku pro ransomware

xiaopao found the Dharma ransomware variant that appends the .zxcv extension.

18.10.20

New Philadelphia Ransomware variant

Philadelphia ransomware

xiaopao found a new Philadelphia Ransomware variant.

18.10.20

Ransomware hits the Bureau of the Fire Department of Puerto Rico

PR announcement

18.10.20

Barnes & Noble hit by cyberattack that exposed customer data

Výsledek obrázku pro ransomware

​U.S. Bookstore giant Barnes & Noble has disclosed that they were victims of a cyberattack that may have exposed customers' data.

18.10.20

FIN11 hackers jump into the ransomware money-making scheme

Výsledek obrázku pro ransomware

FIN11, a financially-motivated hacker group with a history starting since at least 2016, has adapted malicious email campaigns to transition to ransomware as the main monetization method.

18.10.20

New Badboymnb Ransomware

Výsledek obrázku pro ransomware

xiaopao found the Badboymnb Ransomware that appends the .Badboy extension and drops a ransom note named ReadME-BadboyEncryption.txt.

18.10.20

London Borough of Hackney suffers ‘serious’ cyberattack

Výsledek obrázku pro ransomware

The city council systems for the London Borough of Hackney have been hit with a 'serious' cyberattack that impacts many of their services and IT systems.

18.10.20

International law firm Seyfarth discloses ransomware attack

Výsledek obrázku pro ransomware

International law firm Seyfarth Shaw announced on Monday that it was the victim of a ransomware attack over the weekend.

18.10.20

New Loki Stealer encrypts your files

Anubis stealer panel

Arkbird found a new Loki Stealer variant that steals files and then encrypts your computer. When encrypting, it appends the .loki extension to encrypted files.

18.10.20

New Nephilim variant

Merin

Siri found a new Nephilim ransomware variant that appends the .MERIN extension.

18.10.20

City of Mt. Pleasant falls victim to remote ransomware attack

Výsledek obrázku pro ransomware

The City of Mt. Pleasant has fallen victim to a ransomware attack, that is according to city officials.

18.10.20

New STOP Ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP Ransomware variant that appends the .foqe extension.

18.10.20

New Matrix Ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new Matrix Ransomware variant that appends the .TG33 extension and drops the TG33_INFO.rtf ransom note.

18.10.20

BazarLoader used to deploy Ryuk ransomware on high-value targets

Výsledek obrázku pro ransomware

The TrickBot gang operators are increasingly targeting high-value targets with the new stealthy BazarLoader trojan before deploying the Ryuk ransomware.

18.10.20

TrickBot botnet targeted in takedown operations, little impact seen

Výsledek obrázku pro ransomware

TrickBot, one of the most active botnets on the planet, recently has suffered some strong blows from actors in the cybersecurity industry aiming at disrupting its operations.

18.10.20

Tyler Technologies paid ransomware gang for decryption key

Výsledek obrázku pro ransomware

Tyler Technologies has paid a ransom for a decryption key to recover files encrypted in a recent ransomware attack.

11.10.20

New in-development ransomware

Výsledek obrázku pro ransomware

S!Ri found a new in-development ransomware that appends .en extension to encrypted files.

11.10.20

New Dharma Ransomware variants

Výsledek obrázku pro ransomware

Jakub Kroustek found new Dharma ransomware variants that append the .gtsc or .dme extension to encrypted files.

11.10.20

Largest cruise line operator Carnival confirms ransomware data theft

Výsledek obrázku pro ransomware

Carnival Corporation, the world's largest cruise line operator, has confirmed that the personal information of customers, employees, and ship crews was stolen during an August ransomware attack.

11.10.20

Software AG IT giant hit with $23 million ransom by Clop ransomware

Výsledek obrázku pro ransomware

The Clop ransomware gang hit the network of German enterprise software giant Software AG last Saturday, asking for a ransom of $23 million after stealing employee information and company documents.

11.10.20

Ransomware gang now using critical Windows flaw in attacks

Výsledek obrázku pro ransomware

Microsoft is warning that cybercriminals have started to incorporate exploit code for the ZeroLogon vulnerability in their attacks. The alert comes after the company noticed ongoing attacks from cyber-espionage group MuddyWater (SeedWorm) in the second half of September.

11.10.20

Massachusetts school district shut down by ransomware attack

Výsledek obrázku pro ransomware

The Springfield Public Schools district in Massachusetts has become the victim of a ransomware attack that has caused the closure of schools while they investigate the cyberattack.

11.10.20

New Cyber_Splitter Android ransomware found

Cybersplitter

MalwareHunterTeam found a new Android ransomware called CyberSplitter that appends the .Dcry extension to encrypted files.

11.10.20

New WoodRat ransomware

Woodrat

S!Ri found a new ransomware that appends .woodrat to encrypted files.

11.10.20

New Curator ransomware

Výsledek obrázku pro ransomware

Michael Gillespie is looking for a new ransomware that appends the extension .CURATOR and drops a ransom note named !=HOW_TO_DECRYPT_FILES=!.txt.

11.10.20

The FONIX RaaS | New Low-Key Threat with Unnecessary Complexities

Výsledek obrázku pro ransomware

FONIX Raas (Ransomware as a Service) is an offering that first came to attention in July of this year. It did not make much of a splash at the time, and even currently, we are only seeing small numbers of infections due to this ransomware family. However, RaaS that at first fly under the radar can quickly become rampant if defenders and security solutions remain unaware of them. Notably, FONIX varies somewhat from many other current RaaS offerings in that it employs four methods of encryption for each file and has an overly-complex post-infection engagement cycle. In this post, we dig a little deeper into these and other peculiarities of this new RaaS offering.

11.10.20

Ransomware threat surge, Ryuk attacks about 20 orgs per week

Výsledek obrázku pro ransomware

Malware researchers monitoring ransomware threats noticed a sharp increase in these attacks over the past months compared to the first six months of 2020.

11.10.20

New SantaCrypt Ransomware

Výsledek obrázku pro ransomware

xXToffeeXx found a new ransomware dubbed SantaCrypt that appends the .$anta and drops a ransom note named HOW_TO_RECOVER_MY_FILES.TXT.

11.10.20

Customized version of Petya

Eyecry

Michael Gillespie found a new ransomware called EYECRY that is a customized version of the Petya ransomware/bootlocker.

11.10.20

New MOSS STOP Djvu ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP Djvu ransomware variant that appends the .moss extension to encrypted files.

11.10.20

New Babax variant with ransomware module

Babax stealer

Karsten Hahn tweeted about a new Babax variant called Osno Stealer that includes a ransomware module that appends the .osnoed.

11.10.20

New ransomware vaccine kills programs wiping Windows shadow volumes

Výsledek obrázku pro ransomware

A new ransomware vaccine program has been created that terminates processes that try to delete volume shadow copies using Microsoft's vssadmin.exe program,

11.10.20

New Dharma ransomware variant

Výsledek obrázku pro ransomware

Jakub Kroustek found a new Dharma ransomware variant that appends the .FLYU extension to encrypted files.

11.10.20

New Jersey hospital paid ransomware gang $670K to prevent data leak

Výsledek obrázku pro ransomware

University Hospital New Jersey in Newark, New Jersey, paid a $670,000 ransomware demand this month to prevent the publishing of 240 GB of stolen data, including patient info.

3.10.20

New Homer Dharma Ransomware variant

Výsledek obrázku pro ransomware

Marcelo Rivero found a new variant of the Dharma Ransomware that appends the .homer extension to encrypted files.

3.10.20

US govt warns of sanction risks for facilitating ransomware payments

Výsledek obrázku pro ransomware

The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) today said that organizations that assist ransomware victims to make ransom payments are facing sanctions risks as their actions could violate OFAC regulations.

3.10.20

Ransomware gangs add DDoS attacks to their extortion arsenal

Výsledek obrázku pro ransomware

A ransomware operation has started to utilize a new tactic to extort their victims: DDoS a victim's website until they return to the negotiation table.

3.10.20

Hackers leak files stolen in Pakistan's K-Electric ransomware attack

Výsledek obrázku pro ransomware

The Netwalker ransomware operators have published the stolen data for K-Electric, Pakistan's largest private power company, after a ransom was not paid.

3.10.20

New MAME VSE Ransomware

MAME

0x4143 found a new ransomware that appends the '.mame vse' extension to encrypted files.

3.10.20

New FRESH Dharma Ransomware variant

Výsledek obrázku pro ransomware

Jakub Kroustek found a new variant of the Dharma Ransomware that appends the .fresh extension to encrypted files.

3.10.20

SunCrypt ransomware group swears off medical entities, sets sights on cybersecurity firms

Výsledek obrázku pro ransomware

So SunCrypt pledges to leave medical entities alone, and DataBreaches.net hopes they stick to their pledge on that. But who will be they be focusing on, then? According to the spokesperson, “Suncrypt is after the cybersecurity companies,” and they say we will all be seeing proof of that very soon.

3.10.20

QNAP warns customers of recent wave of ransomware attacks

Výsledek obrázku pro ransomware

QNAP has issued an advisory about a recent wave of ransomware attacks targeting its NAS storage devices and encrypting files.

3.10.20

Blackbaud: Ransomware gang had access to banking info and passwords

Výsledek obrázku pro ransomware

Blackbaud, a leading cloud software provider, confirmed that the threat actors behind the May 2020 ransomware attack had access to unencrypted banking and login information, as well as social security numbers.

3.10.20

New Phobos Ransomware variant

Výsledek obrázku pro ransomware

dnwls0719 found a new Phobos Ransomware variant that appends the .isos extension to encrypted files.

3.10.20

New STOP ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new STOP Ransomware variant that appends the .lyli extension to encrypted files.

3.10.20

Ransomware hits US-based Arthur J. Gallagher insurance giant

Výsledek obrázku pro ransomware

US-based Arthur J. Gallagher (AJG) global insurance brokerage and risk management firm confirmed a ransomware attack that hit its systems on Saturday.

3.10.20

Fake software crack sites used to push Exorcist 2.0 Ransomware

Výsledek obrázku pro ransomware

The threat actors behind the Exorcist 2.0 ransomware are using malicious advertising to redirect victims to fake software crack sites that distribute their malware.

3.10.20

New EasyRansom ransomware

EasyRansom

GrujaRS found a new ransomware that appends the .easyransom extension and drops a ransom note named easyransom_readme.txt.

3.10.20

New MedusaLocker ransomware variant

Výsledek obrázku pro ransomware

M. Shahpasandi found a new MedusaLocker ransomware variant that appends the .lr extension.

3.10.20

New WSHLP Dharma ransomware variant

Výsledek obrázku pro ransomware

Michael Gillespie found a new Dharma Ransomware variant that appends the .WSHLP extension.

3.10.20

Logistics giant CMA CGM goes offline to block malware attack

Výsledek obrázku pro ransomware

CMA CGM S.A., a French maritime transport and logistics giant, today disclosed a malware attack affecting some servers on the edge of its network.

3.10.20

REvil ransomware deposits $1 million in hacker recruitment drive

Výsledek obrázku pro ransomware

The REvil Ransomware (Sodinokibi) operation has deposited $1 million in bitcoins on a Russian-speaking hacker forum to prove to potential affiliates that they mean business.

3.10.20

UHS hospitals hit by reported country-wide Ryuk ransomware attack

Výsledek obrázku pro ransomware

Universal Health Services (UHS), a Fortune 500 hospital and healthcare services provider, has reportedly shut down systems at healthcare facilities around the US after a cyber-attack that hit its network during early Sunday morning.

3.10.20

New Babaxed Ransomware

Výsledek obrázku pro ransomware

GrujaRS found a new ransomware that appends the .babaxed extension and drops a ransom note named RECOVERY INSTRUCTIONS.

3.10.20

ThunderX ransomware silenced with release of a free decryptor

Výsledek obrázku pro ransomware

A decryptor for the ThunderX ransomware has been released by cybersecurity firm Tesorion that lets victims recover their files for free.

3.10.20

Tyler Technologies warns clients to change remote support passwords

Výsledek obrázku pro ransomware

Tyler Technologies is warning clients to change the passwords for the technology provider's remote access accounts after suspicious logins have been reported.